Scale AI

EMEA Assurance Lead

6.0/10
Scale AI
Not specified
Remote
lead
about 5 hours ago
AI SummaryVerified by Aipplify AI

The vacancy is well-defined in responsibilities and requirements but lacks compensation details.

AI quality score5.9 / 10

Check Match — Just drop your CV

See your fit for EMEA Assurance Lead in seconds.

Overview

Scale AI is seeking an EMEA Assurance Lead to drive assurance programs across the EMEA public sector and commercial business, focusing on cybersecurity compliance and regulatory requirements. Scale is powering the generative AI wave by providing the data and infrastructure for companies to build large-scale foundation models. AI is rapidly changing the world, and Scale is growing to meet that rapid demand across global markets, including accelerating public sector business across EMEA.

Responsibilities

  • Lead region-specific assurance programs across the GCC and UK, including:
  • Qatar NCSA National Information Assurance (NIA)
  • KSA NCA Essential Cybersecurity Controls (ECC)
  • UAE DESC Information Security Regulation (ISR)
  • UK Cyber Essentials Plus, Defence Cyber Certification (DCC), and NCSC Secure by Design (SdB)
  • Own controls mapping, evidence collection, gap analysis, certification timelines, and submission management for each, working with accredited external assessors where required.
  • Work with the global GRC team to maintain and renew Scale's existing certifications and obtain new ones, including SOC 2, ISO 27001, ISO 42001, and ISO 9001.
  • Design and maintain EMEA-specific controls, adapting Scale's global controls framework to sovereign regulatory and customer requirements.
  • Set priorities and operating cadences for EMEA assurance workflows, including intake, evidence collection, control owner follow-up, remediation tracking, and deadline management.
  • Support EMEA public sector customer assurance activities, including security questionnaires, compliance due diligence responses, and customer-facing assurance discussions.
  • Partner with Legal on EMEA contract-driven assurance obligations and data protection compliance intersections.
  • Manage relationships with EMEA-based external auditors, assessors, certification bodies, and regulatory counterparts.
  • Support internal and external audits across EMEA and report into the Head of Global Assurance on program health, key risks, certification timelines, and regional regulatory developments.

Conditions

  • Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, ISO 42001 Internal Auditor, or CCSP are nice to have.
  • Experience with NATO information assurance standards or defence procurement prerequisites is a plus.
  • Working knowledge of Arabic and UK SC or DV clearance, or eligibility for equivalent EMEA government security clearances is advantageous.
  • For those applying based in Qatar: Residency and employment in Qatar requires certain permissions issued by the Qatari authorities.

Requirements

  • 7+ years of experience in cybersecurity compliance, GRC, public sector assurance, IT audit, cloud security, or related roles.
  • Experience executing government or public sector assurance programs in the UK, EU, or GCC.
  • Deep familiarity with one or more of: UK Cyber Essentials/Cyber Essentials+, ISO 27001, ISO 9001, ISO 42001, SOC 2, or equivalent frameworks.
  • Familiarity with relevant EMEA data protection and AI governance requirements (e.g., GDPR, PDPPL, EU AI Act).
  • Experience managing controls mapping, evidence collection, remediation tracking, and audit coordination across distributed teams.
  • Experience with cloud environments (AWS, Azure, GCP) and the ability to assess cloud architecture against compliance requirements.
  • Strong communication skills and sound judgment on escalation.
Loading similar jobs...